Class: Mihari::Emitters::MISP

Inherits:

Base

• Object
• Base
• Mihari::Emitters::MISP

Defined in:

lib/mihari/emitters/misp.rb

Constant Summary

Constants included from Mixins::Retriable

Mixins::Retriable::DEFAULT_ON

Instance Attribute Summary

• #api_endpoint ⇒ String^? readonly
• #api_key ⇒ String^? readonly

Instance Method Summary

• #emit(title:, artifacts:, tags: [], **_options) ⇒ Object
• #initialize(*args, **kwargs) ⇒ MISP constructor

  A new instance of MISP.

• #valid? ⇒ Boolean

Methods inherited from Base

inherited, #run

Methods included from Mixins::Retriable

#retry_on_error

Methods included from Mixins::Configurable

#configuration_values, #configured?

Constructor Details

#initialize(*args, **kwargs) ⇒ MISP

Returns a new instance of MISP.

# File 'lib/mihari/emitters/misp.rb', line 14

def initialize(*args, **kwargs)
  super(*args, **kwargs)

  @api_endpoint = kwargs[:api_endpoint] || Mihari.config.misp_api_endpoint
  @api_key = kwargs[:api_key] || Mihari.config.misp_api_key

  ::MISP.configure do |config|
    config.api_endpoint = api_endpoint
    config.api_key = api_key
  end
end

Instance Attribute Details

#api_endpoint ⇒ String^? (readonly)

Returns:

• (String, nil)

# File 'lib/mihari/emitters/misp.rb', line 9

def api_endpoint
  @api_endpoint
end

#api_key ⇒ String^? (readonly)

Returns:

• (String, nil)

# File 'lib/mihari/emitters/misp.rb', line 12

def api_key
  @api_key
end

Instance Method Details

#emit(title:, artifacts:, tags: [], **_options) ⇒ Object

# File 'lib/mihari/emitters/misp.rb', line 31

def emit(title:, artifacts:, tags: [], **_options)
  return if artifacts.empty?

  event = ::MISP::Event.new(info: title)

  artifacts.each do |artifact|
    event.attributes << build_attribute(artifact)
  end

  tags.each do |tag|
    event.add_tag name: tag
  end

  event.create
end

#valid? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/mihari/emitters/misp.rb', line 27

def valid?
  api_endpoint? && api_key? && ping?
end